Thank you all for your quick answers! I really appreciate that. I see that many of you have taken your time to answer me asap. That's because I will take the time to answer you one by one:
Steven Evans: scan over LAN network Nicko Demeter: I telnet to the host in those ports and got nothing but it seemed that one program was listening to these ports. Mario Henley Becerril Geldis: that's what I am planning to do right now (it was "bad" installed) Jeremy: thank's for the examples Juan Manuel Mouriz: that was it! I have a Slackware dist. but I installed the portsentry recently and didn't noticed the presence... ;) (No te preocupes por el ingl�s que se entiende perfectamente. El email hubiese ayudado enormemente si lo hubiese le�do antes. Gracias de todos modos) Nate: aren't they programmed for a MS environment? C Gordon: these tools are really great! That's what I was searching for when I noticed these opened ports. Do you know the official site of lsof? H�kan Stensby: how does fuser work? I tried it with "fuser 12345/tcp" and "fuser 21/tcp", etc. and got no results. Any tip? B. Mac: When it's time to remember all the tools you learned, all the tools you use, you just don't remember them like: netstat. It would have be a good idea to use it. Now, I get no results with fuser... Devon Ryan: no sockstat. netstat would have been the best. I don't know what tripwire is, but I know what porsentry is, yes I know ;) TD - Sales: I was in my own LAN... Yiming Gong: I never heard that, too. But I got scared!! I don't have lsof in my Slackware. Thanks anyway. Iv�n Hern�ndez Puga: gracias! Pied (Bugtraq): it was something like that. It was the network security program called portsentry. It was listening to these ports. The prog. log all the tries ;) Leon: thanks! Eric Schroeder: thanks but I have no lsof :^) Again, thanks folks! -----Mensaje original----- De: R. Toma [mailto:[EMAIL PROTECTED]] Enviado el: Mi�rcoles, 28 de Noviembre de 2001 18:16 Para: [EMAIL PROTECTED] Asunto: ��I NEED HELP!! Importancia: Alta I scanned my homeserver for open ports and I found that I have the ports: 12345 NetBus 20034 NetBus Pro 31337 BackOriffice open. Now, are these the famous trojans? I have linux, aren't they programmed for a MS platform? How can I close these ports???? PLEASE!!! _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com
